LinkedIn, the social networking site for professionals, is being sued for $5 million after more than six million of its user passwords were stolen.

The case, which was brought in federal court for the Northern District of California by Katie Szpyrka of Illinois, is seeking class action status.

In the court filing, Szpyrka’s lawyers state that LinkedIn acted contrary to its privacy policy, which says that the company will protect information provided by its users. The filing claims, customer data was kept on servers “in a weak encryption format and without implementing other crucial security measures.”

The filing says that the failure of the company’s security measures allowed hackers to gain access to LinkedIn’s user passwords and then post that information online.